phpwiki-talk

Re: [Phpwiki-talk] TypeError in ExternalReferrer under php8

[Marc-Etienne V. (Nokia) <mar...@no...>]

Hi Thom,

Thank you for the report.
I will test and provide a fix.

Is your Phpwiki internal or available on the Internet?

Best regards,

Marc-Etienne

--
Marc-Etienne Vargenau mar...@no...<mailto:mar...@no...>
Nokia, 12, rue Jean-Bart, 91300 Massy, FRANCE
Mobile: +33 6 24 49 78 68<tel:+33624497868>
Senior Specialist Open Source
Planned absence: none


De : Thom Jeera via Phpwiki-talk <php...@li...>
Date : mardi, 24 octobre 2023 à 21:35
À : php...@li... <php...@li...>
Cc : Thom Jeera <tho...@pr...>
Objet : [Phpwiki-talk] TypeError in ExternalReferrer under php8

CAUTION: This is an external email. Please be very careful when clicking links or opening attachments. See the URL nok.it/ext for additional information.



Hi - I'm running phpwiki-1.6.2 on php 8.2.11.

I saw an error when someone clicked a phpwiki link from within a gmail app - see bottom of email. The 'google.' in the referer triggers the external referrer code, which breaks under php8 (seems ok in php5 - I couldn't recreate it against phpwiki.demo.free.fr for instance).

Something like this would trigger it under php8:

curl -H 'referer: android-app://com.google.android.gm/' http://phpwiki.demo.free.fr/index.php/SandBox

The code here in ExternalReferrer.php looks inconsistent - if there is no query string (ie the tested value IS empty), then $url is still an array when it gets passed into stristr, hence the error.

        if (!empty($url["query"])) {
            $url = $url["query"];
        }

        if ($query1 and @stristr($url, $query1)) {

The behaviour is present but the error gets suppressed under earlier versions of php.

Suggested fix: add "else return false;" after the !empty test ?


Reported error:

Got error 'PHP message: PHP Fatal error:  Uncaught TypeError: stristr():
Argument #1 ($haystack) must be of type string, array given in /syshome/webchris/html/phpwiki-1.6.1/lib/ExternalReferrer.php:129
Stack trace:
#0 /syshome/webchris/html/phpwiki-1.6.1/lib/ExternalReferrer.php(129): stristr()
#1 /syshome/webchris/html/phpwiki-1.6.1/lib/stdlib.php(1890): SearchEngines->parseSearchQuery()
#2 /syshome/webchris/html/phpwiki-1.6.1/lib/display.php(324): isExternalReferrer()
#3 /syshome/webchris/html/phpwiki-1.6.1/lib/main.php(1069): displayPage()
#4 /syshome/webchris/html/phpwiki-1.6.1/lib/main.php(816): WikiRequest->action_browse()
#5 /syshome/webchris/html/phpwiki-1.6.1/lib/main.php(1451): WikiRequest->handleAction()
#6 /syshome/webchris/html/phpwiki-1.6.1/lib/main.php(1475): main()
#7 /syshome/webchris/html/phpwiki-1.6.1/index.php(60): include('...')
#8 {main}
  thrown in /syshome/webchris/html/phpwiki-1.6.1/lib/ExternalReferrer.php on line 129', referer: android-app://com.google.android.gm/


Regards,
Thom.


_______________________________________________
Phpwiki-talk mailing list
Php...@li...
https://lists.sourceforge.net/lists/listinfo/phpwiki-talk

[Phpwiki-talk] TypeError in ExternalReferrer under php8

[Thom J. <tho...@pr...>]

Hi - I'm running phpwiki-1.6.2 on php 8.2.11.

I saw an error when someone clicked a phpwiki link from within a gmail app - see bottom of email. The 'google.' in the referer triggers the external referrer code, which breaks under php8 (seems ok in php5 - I couldn't recreate it against phpwiki.demo.free.fr for instance).

Something like this would trigger it under php8:

curl -H 'referer: android-app://com.google.android.gm/' http://phpwiki.demo.free.fr/index.php/SandBox

The code here in ExternalReferrer.php looks inconsistent - if there is no query string (ie the tested value IS empty), then $url is still an array when it gets passed into stristr, hence the error.

        if (!empty($url["query"])) {
            $url = $url["query"];
        }

        if ($query1 and @stristr($url, $query1)) {

The behaviour is present but the error gets suppressed under earlier versions of php.

Suggested fix: add "else return false;" after the !empty test ?


Reported error:

Got error 'PHP message: PHP Fatal error:  Uncaught TypeError: stristr():
Argument #1 ($haystack) must be of type string, array given in /syshome/webchris/html/phpwiki-1.6.1/lib/ExternalReferrer.php:129
Stack trace:
#0 /syshome/webchris/html/phpwiki-1.6.1/lib/ExternalReferrer.php(129): stristr()
#1 /syshome/webchris/html/phpwiki-1.6.1/lib/stdlib.php(1890): SearchEngines->parseSearchQuery()
#2 /syshome/webchris/html/phpwiki-1.6.1/lib/display.php(324): isExternalReferrer()
#3 /syshome/webchris/html/phpwiki-1.6.1/lib/main.php(1069): displayPage()
#4 /syshome/webchris/html/phpwiki-1.6.1/lib/main.php(816): WikiRequest->action_browse()
#5 /syshome/webchris/html/phpwiki-1.6.1/lib/main.php(1451): WikiRequest->handleAction()
#6 /syshome/webchris/html/phpwiki-1.6.1/lib/main.php(1475): main()
#7 /syshome/webchris/html/phpwiki-1.6.1/index.php(60): include('...')
#8 {main}
  thrown in /syshome/webchris/html/phpwiki-1.6.1/lib/ExternalReferrer.php on line 129', referer: android-app://com.google.android.gm/


Regards,
Thom.

Re: [Phpwiki-talk] Calendar and CalendarList plugins return incorrect links array

[Vargenau, Marc-E. (N. - FR/Paris-Saclay) <mar...@no...>]

Hi Christof,

Thank you for your report.
I will include your patch in the next release.

Best regards,

Marc-Etienne

-----Original Message-----
From: Christof Meerwald <cm...@cm...> 
Sent: Wednesday, February 9, 2022 7:08 PM
To: php...@li...
Subject: [Phpwiki-talk] Calendar and CalendarList plugins return incorrect links array

Hi,

just noticed that both the Calendar and CalendarList plugins return incorrect links array from "getWikiPageLinks".

Attached is a patch for this, although removing the whole getWikiPageLinks from those plugins might be the better option (as the comment says "static only as of action=edit") as it's not really useful that way.


Christof

-- 

https://cmeerw.org                             sip:cmeerw at cmeerw.org
mailto:cmeerw at cmeerw.org                   xmpp:cmeerw at cmeerw.org

[Phpwiki-talk] Calendar and CalendarList plugins return incorrect links array

[Christof M. <cm...@cm...>]

Hi,

just noticed that both the Calendar and CalendarList plugins return
incorrect links array from "getWikiPageLinks".

Attached is a patch for this, although removing the whole
getWikiPageLinks from those plugins might be the better option (as the
comment says "static only as of action=edit") as it's not really
useful that way.


Christof

-- 

https://cmeerw.org                             sip:cmeerw at cmeerw.org
mailto:cmeerw at cmeerw.org                   xmpp:cmeerw at cmeerw.org

Re: [Phpwiki-talk] Upload URL has double slash between host and path

[Vargenau, Marc-E. (N. - FR/Paris-Saclay) <mar...@no...>]

Hi Harold,

Yes, the uploads are not included in a wiki dump.
I need to check if this is easily doable.

Best regards,

Marc-Etienne

-----Original Message-----
From: Harold Hallikainen <ha...@ha...> 
Sent: Tuesday, January 18, 2022 8:37 PM
To: php...@li...
Subject: Re: [Phpwiki-talk] Upload URL has double slash between host and path

Perfect! Just installed phpwiki-code-r10908-trunk.zip, and that fixed the upload URL issue.

I note that uploads are not included in a wiki dump and need to be copied separately. Any chance of including uploads in the dump?

THANKS!

Harold

On Tue, January 18, 2022 7:12 am, Vargenau, Marc-Etienne (Nokia -
FR/Paris-Saclay) wrote:
> Hi Harold,
>
> This was happening when DATA_PATH is empty.
> Fixed in Subversion 10905.
>
> Best regards,
>
> Marc-Etienne
>
> -----Original Message-----
> From: Harold Hallikainen <ha...@ha...>
> Sent: Tuesday, January 18, 2022 6:09 AM
> To: php...@li...
> Subject: [Phpwiki-talk] Upload URL has double slash between host and 
> path
>
> This doesn't seem to cause an issue with browsers, but I am seeing a 
> double slash between the hostname and the path.
>
> For example,
>
> https://bh.hallikainen.org//uploads/harold/Drc190Data.pdf
>
> In config.ini, neither UPLOAD_FILE_PATH nor UPLOAD_DATA_PATH are 
> overridden.
>
> Harold
>
>
>
> --
> FCC Rules Updated Daily at http://www.hallikainen.com Not sent from an 
> iPhone.
>
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>


--
FCC Rules Updated Daily at http://www.hallikainen.com Not sent from an iPhone.


_______________________________________________
Phpwiki-talk mailing list
Php...@li...
https://lists.sourceforge.net/lists/listinfo/phpwiki-talk

Re: [Phpwiki-talk] Upload URL has double slash between host and path

[Harold H. <ha...@ha...>]

Perfect! Just installed phpwiki-code-r10908-trunk.zip, and that fixed the
upload URL issue.

I note that uploads are not included in a wiki dump and need to be copied
separately. Any chance of including uploads in the dump?

THANKS!

Harold

On Tue, January 18, 2022 7:12 am, Vargenau, Marc-Etienne (Nokia -
FR/Paris-Saclay) wrote:
> Hi Harold,
>
> This was happening when DATA_PATH is empty.
> Fixed in Subversion 10905.
>
> Best regards,
>
> Marc-Etienne
>
> -----Original Message-----
> From: Harold Hallikainen <ha...@ha...>
> Sent: Tuesday, January 18, 2022 6:09 AM
> To: php...@li...
> Subject: [Phpwiki-talk] Upload URL has double slash between host and path
>
> This doesn't seem to cause an issue with browsers, but I am seeing a
> double slash between the hostname and the path.
>
> For example,
>
> https://bh.hallikainen.org//uploads/harold/Drc190Data.pdf
>
> In config.ini, neither UPLOAD_FILE_PATH nor UPLOAD_DATA_PATH are
> overridden.
>
> Harold
>
>
>
> --
> FCC Rules Updated Daily at http://www.hallikainen.com Not sent from an
> iPhone.
>
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>


-- 
FCC Rules Updated Daily at http://www.hallikainen.com
Not sent from an iPhone.

Re: [Phpwiki-talk] Upload URL has double slash between host and path

[Vargenau, Marc-E. (N. - FR/Paris-Saclay) <mar...@no...>]

Hi Harold,

This was happening when DATA_PATH is empty.
Fixed in Subversion 10905.

Best regards,

Marc-Etienne

-----Original Message-----
From: Harold Hallikainen <ha...@ha...> 
Sent: Tuesday, January 18, 2022 6:09 AM
To: php...@li...
Subject: [Phpwiki-talk] Upload URL has double slash between host and path

This doesn't seem to cause an issue with browsers, but I am seeing a double slash between the hostname and the path.

For example,

https://bh.hallikainen.org//uploads/harold/Drc190Data.pdf

In config.ini, neither UPLOAD_FILE_PATH nor UPLOAD_DATA_PATH are overridden.

Harold



--
FCC Rules Updated Daily at http://www.hallikainen.com Not sent from an iPhone.


_______________________________________________
Phpwiki-talk mailing list
Php...@li...
https://lists.sourceforge.net/lists/listinfo/phpwiki-talk

[Phpwiki-talk] Upload URL has double slash between host and path

[Harold H. <ha...@ha...>]

This doesn't seem to cause an issue with browsers, but I am seeing a
double slash between the hostname and the path.

For example,

https://bh.hallikainen.org//uploads/harold/Drc190Data.pdf

In config.ini, neither UPLOAD_FILE_PATH nor UPLOAD_DATA_PATH are overridden.

Harold



-- 
FCC Rules Updated Daily at http://www.hallikainen.com
Not sent from an iPhone.

Re: [Phpwiki-talk] Issues with Wiki Dump and Garbage in page_data

[Harold H. <ha...@ha...>]

THANKS for all your work on this! I moved the latest_ver,  links, 
page_data, and ver_data to a backup directory, created new empty files,
then  did a restore from a downloaded dump zip. All looks good so far with
the garbage files gone. I'll check in a few days to make sure they do not
reappear as people try to hack the system.

THANKS!

Harold



On Mon, January 17, 2022 4:04 am, Vargenau, Marc-Etienne (Nokia -
FR/Paris-Saclay) wrote:
> Hi Harold,
>
> With the modification introduced in Subversion 10904, accessing a
> non-existent page should no longer create a file in page_data directory.
> Please test it is working for you.
>
> I expect to publish PhpWiki 1.6.1 soon.
>
> Best regards,
>
> Marc-Etienne
>
> -----Original Message-----
> From: Harold Hallikainen <ha...@ha...>
> Sent: Monday, January 17, 2022 5:27 AM
> To: php...@li...
> Subject: Re: [Phpwiki-talk] Issues with Wiki Dump and Garbage in page_data
>
> Done! Actually, the method of my previous updates was pretty poor, and I
> ended up with nested versions. So, it was difficult to tell what version
> was actually running. I have now just unzipped version 10904, renamed it,
> and copied over my old config.ini after comparing it with config-dist to
> see what changes needed to be made. It appears to be working!
>
> So, back to the original question. Are files now created in page_data and
> ver_data when a nonexistant page is requested? Again, my DB method is
> file. I have a lot of trash in those two directories.
>
> I don't see an easy way of getting rid of the trash other than doing a
> dump of the wiki, deleting everything in those directories, then doing a
> respore. Is this a reasonable approach?
>
> THANKS!
>
> Harold
>
>
> On Sun, January 16, 2022 12:43 pm, Vargenau, Marc-Etienne (Nokia -
> FR/Paris-Saclay) wrote:
>> Hi Harold,
>>
>> Can you please update to Subversion 10904 and test?
>>
>> Also, can you do an
>> https://bh.hallikainen.org/wiki/index.php/HomePage?action=upgrade&over
>> write=1 you have quite old versions of system files like
>> PhpWikiAdministration
>>
>> Best regards,
>>
>> Marc-Etienne
>>
>> -----Original Message-----
>> From: Harold Hallikainen <ha...@ha...>
>> Sent: Saturday, January 15, 2022 11:43 PM
>> To: php...@li...
>> Subject: Re: [Phpwiki-talk] Issues with Wiki Dump
>>
>> Thanks for the QUICK response!
>>
>> I ran
>>
>> dnf install php-zip
>> service httpd restart
>>
>> and it works!
>>
>>
>> I am using the flat file database. In wiki_data, I find page_data and
>> ver_data. It LOOKS like ver_data has all versions of the page while
>> page_data has just the most current. I have tried deleting the files
>> in page_data and then looking at the wiki. The latest versions of the
>> pages still show up, and are then added to page_data.
>>
>> Since access data is stored in the page file, every time someone tries
>> to access a page that does not exist, it appears that an appropriate
>> file is created to hold that access data. As people try to hack the
>> system, I end up with files like those below in page_data.
>>
>>
>> %27A
>> %28%29
>> %28CASE+WHEN+%283541%3D3541%29+THEN+3541+ELSE+3541%2A%28SELECT+3541+FR
>> OM+DUAL+UNION+SELECT+2885+FROM+DUAL%29+END%29
>> %28CASE+WHEN+%284882%3D2501%29+THEN+4882+ELSE+4882%2A%28SELECT+4882+FR
>> OM+DUAL+UNION+SELECT+2501+FROM+DUAL%29+END%29
>> %28CASE+WHEN+%289302%3D9302%29+THEN+SLEEP%2832%29+ELSE+9302+END%29
>> %28CASE+WHEN+4772%3D4772+THEN+4772+ELSE+NULL+END%29
>> %28CASE+WHEN+7219%3D9319+THEN+7219+ELSE+NULL+END%29
>> %28SELECT+%28CASE+WHEN+%283521%3D3521%29+THEN+%27RCA%27+ELSE+%28SELECT
>> +5220+UNION+SELECT+3216%29+END%29%29
>> %28SELECT+%28CASE+WHEN+%289983%3D6874%29+THEN+%27RCA%27+ELSE+%28SELECT
>> +6874+UNION+SELECT+8819%29+END%29%29
>> %28SELECT+CONCAT%280x7162716a71%2C%28ELT%284931%3D4931%2C1%29%29%2C0x7
>> 17a767871%29%29
>> %28SELECT+CONCAT%280x716a6b7071%2C%28ELT%282020%3D2020%2C1%29%29%2C0x7
>> 17a786b71%29%29
>> %28SELECT+CONCAT%280x7170717171%2C%28ELT%281739%3D1739%2C1%29%29%2C0x7
>> 171627a71%29%29
>> %28SELECT+CONCAT%280x7176627171%2C%28ELT%289244%3D9244%2C1%29%29%2C0x7
>> 16a717a71%29%29
>> %28SELECT+CONCAT%280x71766a7871%2C%28ELT%285835%3D5835%2C1%29%29%2C0x7
>> 178787871%29%29
>> %28SELECT+CONCAT%280x717a7a6271%2C%28ELT%284238%3D4238%2C1%29%29%2C0x7
>> 1626a6b71%29%29
>> %28SELECT+CONCAT%28CONCAT%28%27qbqjq%27%2C%28CASE+WHEN+%283392%3D3392%
>> 29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qzvxq%27%29%29
>> %28SELECT+CONCAT%28CONCAT%28%27qjkpq%27%2C%28CASE+WHEN+%284051%3D4051%
>> 29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qzxkq%27%29%29
>> %28SELECT+CONCAT%28CONCAT%28%27qpqqq%27%2C%28CASE+WHEN+%282945%3D2945%
>> 29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qqbzq%27%29%29
>> %28SELECT+CONCAT%28CONCAT%28%27qvbqq%27%2C%28CASE+WHEN+%281904%3D1904%
>> 29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qjqzq%27%29%29
>> %28SELECT+CONCAT%28CONCAT%28%27qvjxq%27%2C%28CASE+WHEN+%281582%3D1582%
>> 29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qxxxq%27%29%29
>> %28SELECT+CONCAT%28CONCAT%28%27qzzbq%27%2C%28CASE+WHEN+%282980%3D2980%
>> 29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qbjkq%27%29%29
>>
>> When I unzip the dump, I do not see those filenames, so that's good!
>> So, how do I get rid of these "hack" files? Maybe empty the page_data
>> and page_ver directories, then do a restore?
>>
>> Also, it would be great if an attempt to access a non-existent page
>> would not create a file for it.
>>
>> THANKS!
>>
>> Harold
>>
>>
>>
>>
>>
>> On Sat, January 15, 2022 2:36 pm, Vargenau, Marc-Etienne (Nokia -
>> FR/Paris-Saclay) wrote:
>>> Hi Harold,
>>> 'ZipArchive' is a standard class of PHP since PHP 5.2.0
>>> https://www.php.net/manual/en/class.ziparchive
>>> Probably your PHP is not compiled with that class.
>>> You should check with phpinfo().
>>> Best regards,
>>> Marc-Etienne
>>> -----Original Message-----
>>> From: Harold Hallikainen <ha...@ha...>
>>> Sent: Saturday, January 15, 2022 8:23 PM
>>> To: Harold Hallikainen <ha...@ha...>
>>> Cc: Discussion on PhpWiki features, bugs, development.
>>> <php...@li...>
>>> Subject: [Phpwiki-talk] Issues with Wiki Dump I am having issues with
>>> the wiki dump. Here are the PHP error messages:
>> [15-Jan-2022 18:55:17 UTC] PHP Fatal error:  Uncaught Error: Class
>> 'ZipArchive' not found in
>>> /home/harold/public_html/org/bh/wiki/lib/loadsave.php:217
>>> Stack trace:
>>> #0 /home/harold/public_html/org/bh/wiki/lib/main.php(1273):
>>> MakeWikiZip(Object(WikiRequest))
>>> #1 /home/harold/public_html/org/bh/wiki/lib/main.php(819):
>>> WikiRequest->action_zip()
>>> #2 /home/harold/public_html/org/bh/wiki/lib/main.php(1456):
>>> WikiRequest->handleAction()
>>> #3 /home/harold/public_html/org/bh/wiki/lib/main.php(1480): main() #4
>> /home/harold/public_html/org/bh/wiki/index.php(60):
>>> include('/home/harold/pu...')
>>> #5 {main}
>>>   thrown in /home/harold/public_html/org/bh/wiki/lib/loadsave.php on
>> line
>>> 217
>>> [15-Jan-2022 18:55:59 UTC] PHP Notice:  Undefined index: MinPage in
>> /home/harold/public_html/fr/index.php on line 9
>>> [15-Jan-2022 18:55:59 UTC] PHP Notice:  Undefined index: MaxPage in
>> /home/harold/public_html/fr/index.php on line 10
>>> [15-Jan-2022 18:56:00 UTC] PHP Notice:  Undefined index: HOME in
>> /home/harold/public_html/org/w6iwi/script/rbn.php on line 108
>>> [15-Jan-2022 18:56:05 UTC] PHP Notice:  Undefined index: MinPage in
>> /home/harold/public_html/fr/index.php on line 9
>>> [15-Jan-2022 18:56:05 UTC] PHP Notice:  Undefined index: MaxPage in
>> /home/harold/public_html/fr/index.php on line 10
>>> [15-Jan-2022 18:56:26 UTC] PHP Notice:  Undefined index: MinPage in
>> /home/harold/public_html/fr/index.php on line 9
>>> [15-Jan-2022 18:56:26 UTC] PHP Notice:  Undefined index: MaxPage in
>> /home/harold/public_html/fr/index.php on line 10
>>> [15-Jan-2022 18:56:35 UTC] PHP Fatal error:  Uncaught Error: Class
>> 'ZipArchive' not found in
>>> /home/harold/public_html/org/bh/wiki/lib/loadsave.php:217
>>> Stack trace:
>>> #0 /home/harold/public_html/org/bh/wiki/lib/main.php(1273):
>>> MakeWikiZip(Object(WikiRequest))
>>> #1 /home/harold/public_html/org/bh/wiki/lib/main.php(819):
>>> WikiRequest->action_zip()
>>> #2 /home/harold/public_html/org/bh/wiki/lib/main.php(1456):
>>> WikiRequest->handleAction()
>>> #3 /home/harold/public_html/org/bh/wiki/lib/main.php(1480): main() #4
>> /home/harold/public_html/org/bh/wiki/index.php(60):
>>> include('/home/harold/pu...')
>>> #5 {main}
>>>   thrown in /home/harold/public_html/org/bh/wiki/lib/loadsave.php on
>> line
>>> 217
>>> Using Dump To Directory, a lot of files (perhaps all) show up in the
>> specified directory, but this error message appears at the bottom of
>> the page.
>>> Fatal PhpWiki Error: couldn't open file "/home/harold/tmp/wikidump/"
>>> for
>> writing
>>> I just updated to  phpwiki-code-r10903-trunk and the errors still
>> appear.
>>> I am going to try a restore from the dump to directory since it looks
>> like
>>> it may be working.
>>> THANKS!
>>> Harold
>>> _______________________________________________
>>> Phpwiki-talk mailing list
>>> Php...@li...
>>> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>>> _______________________________________________
>>> Phpwiki-talk mailing list
>>> Php...@li...
>>> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>>
>>
>> --
>> FCC Rules Updated Daily at http://www.hallikainen.com Not sent from an
>> iPhone.
>>
>>
>>
>>
>>
>> _______________________________________________
>> Phpwiki-talk mailing list
>> Php...@li...
>> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>>
>>
>> _______________________________________________
>> Phpwiki-talk mailing list
>> Php...@li...
>> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>>
>>
>
>
> --
> FCC Rules Updated Daily at http://www.hallikainen.com Not sent from an
> iPhone.
>
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>


-- 
FCC Rules Updated Daily at http://www.hallikainen.com
Not sent from an iPhone.

Re: [Phpwiki-talk] Issues with Wiki Dump and Garbage in page_data

[Vargenau, Marc-E. (N. - FR/Paris-Saclay) <mar...@no...>]

Hi Harold,

With the modification introduced in Subversion 10904, accessing a non-existent page should no longer create a file in page_data directory.
Please test it is working for you.

I expect to publish PhpWiki 1.6.1 soon.

Best regards,

Marc-Etienne

-----Original Message-----
From: Harold Hallikainen <ha...@ha...> 
Sent: Monday, January 17, 2022 5:27 AM
To: php...@li...
Subject: Re: [Phpwiki-talk] Issues with Wiki Dump and Garbage in page_data

Done! Actually, the method of my previous updates was pretty poor, and I ended up with nested versions. So, it was difficult to tell what version was actually running. I have now just unzipped version 10904, renamed it, and copied over my old config.ini after comparing it with config-dist to see what changes needed to be made. It appears to be working!

So, back to the original question. Are files now created in page_data and ver_data when a nonexistant page is requested? Again, my DB method is file. I have a lot of trash in those two directories.

I don't see an easy way of getting rid of the trash other than doing a dump of the wiki, deleting everything in those directories, then doing a respore. Is this a reasonable approach?

THANKS!

Harold


On Sun, January 16, 2022 12:43 pm, Vargenau, Marc-Etienne (Nokia -
FR/Paris-Saclay) wrote:
> Hi Harold,
>
> Can you please update to Subversion 10904 and test?
>
> Also, can you do an
> https://bh.hallikainen.org/wiki/index.php/HomePage?action=upgrade&over
> write=1 you have quite old versions of system files like 
> PhpWikiAdministration
>
> Best regards,
>
> Marc-Etienne
>
> -----Original Message-----
> From: Harold Hallikainen <ha...@ha...>
> Sent: Saturday, January 15, 2022 11:43 PM
> To: php...@li...
> Subject: Re: [Phpwiki-talk] Issues with Wiki Dump
>
> Thanks for the QUICK response!
>
> I ran
>
> dnf install php-zip
> service httpd restart
>
> and it works!
>
>
> I am using the flat file database. In wiki_data, I find page_data and 
> ver_data. It LOOKS like ver_data has all versions of the page while 
> page_data has just the most current. I have tried deleting the files 
> in page_data and then looking at the wiki. The latest versions of the 
> pages still show up, and are then added to page_data.
>
> Since access data is stored in the page file, every time someone tries 
> to access a page that does not exist, it appears that an appropriate 
> file is created to hold that access data. As people try to hack the 
> system, I end up with files like those below in page_data.
>
>
> %27A
> %28%29
> %28CASE+WHEN+%283541%3D3541%29+THEN+3541+ELSE+3541%2A%28SELECT+3541+FR
> OM+DUAL+UNION+SELECT+2885+FROM+DUAL%29+END%29
> %28CASE+WHEN+%284882%3D2501%29+THEN+4882+ELSE+4882%2A%28SELECT+4882+FR
> OM+DUAL+UNION+SELECT+2501+FROM+DUAL%29+END%29
> %28CASE+WHEN+%289302%3D9302%29+THEN+SLEEP%2832%29+ELSE+9302+END%29
> %28CASE+WHEN+4772%3D4772+THEN+4772+ELSE+NULL+END%29
> %28CASE+WHEN+7219%3D9319+THEN+7219+ELSE+NULL+END%29
> %28SELECT+%28CASE+WHEN+%283521%3D3521%29+THEN+%27RCA%27+ELSE+%28SELECT
> +5220+UNION+SELECT+3216%29+END%29%29
> %28SELECT+%28CASE+WHEN+%289983%3D6874%29+THEN+%27RCA%27+ELSE+%28SELECT
> +6874+UNION+SELECT+8819%29+END%29%29
> %28SELECT+CONCAT%280x7162716a71%2C%28ELT%284931%3D4931%2C1%29%29%2C0x7
> 17a767871%29%29
> %28SELECT+CONCAT%280x716a6b7071%2C%28ELT%282020%3D2020%2C1%29%29%2C0x7
> 17a786b71%29%29
> %28SELECT+CONCAT%280x7170717171%2C%28ELT%281739%3D1739%2C1%29%29%2C0x7
> 171627a71%29%29
> %28SELECT+CONCAT%280x7176627171%2C%28ELT%289244%3D9244%2C1%29%29%2C0x7
> 16a717a71%29%29
> %28SELECT+CONCAT%280x71766a7871%2C%28ELT%285835%3D5835%2C1%29%29%2C0x7
> 178787871%29%29
> %28SELECT+CONCAT%280x717a7a6271%2C%28ELT%284238%3D4238%2C1%29%29%2C0x7
> 1626a6b71%29%29
> %28SELECT+CONCAT%28CONCAT%28%27qbqjq%27%2C%28CASE+WHEN+%283392%3D3392%
> 29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qzvxq%27%29%29
> %28SELECT+CONCAT%28CONCAT%28%27qjkpq%27%2C%28CASE+WHEN+%284051%3D4051%
> 29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qzxkq%27%29%29
> %28SELECT+CONCAT%28CONCAT%28%27qpqqq%27%2C%28CASE+WHEN+%282945%3D2945%
> 29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qqbzq%27%29%29
> %28SELECT+CONCAT%28CONCAT%28%27qvbqq%27%2C%28CASE+WHEN+%281904%3D1904%
> 29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qjqzq%27%29%29
> %28SELECT+CONCAT%28CONCAT%28%27qvjxq%27%2C%28CASE+WHEN+%281582%3D1582%
> 29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qxxxq%27%29%29
> %28SELECT+CONCAT%28CONCAT%28%27qzzbq%27%2C%28CASE+WHEN+%282980%3D2980%
> 29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qbjkq%27%29%29
>
> When I unzip the dump, I do not see those filenames, so that's good! 
> So, how do I get rid of these "hack" files? Maybe empty the page_data 
> and page_ver directories, then do a restore?
>
> Also, it would be great if an attempt to access a non-existent page 
> would not create a file for it.
>
> THANKS!
>
> Harold
>
>
>
>
>
> On Sat, January 15, 2022 2:36 pm, Vargenau, Marc-Etienne (Nokia -
> FR/Paris-Saclay) wrote:
>> Hi Harold,
>> 'ZipArchive' is a standard class of PHP since PHP 5.2.0 
>> https://www.php.net/manual/en/class.ziparchive
>> Probably your PHP is not compiled with that class.
>> You should check with phpinfo().
>> Best regards,
>> Marc-Etienne
>> -----Original Message-----
>> From: Harold Hallikainen <ha...@ha...>
>> Sent: Saturday, January 15, 2022 8:23 PM
>> To: Harold Hallikainen <ha...@ha...>
>> Cc: Discussion on PhpWiki features, bugs, development.
>> <php...@li...>
>> Subject: [Phpwiki-talk] Issues with Wiki Dump I am having issues with 
>> the wiki dump. Here are the PHP error messages:
> [15-Jan-2022 18:55:17 UTC] PHP Fatal error:  Uncaught Error: Class 
> 'ZipArchive' not found in
>> /home/harold/public_html/org/bh/wiki/lib/loadsave.php:217
>> Stack trace:
>> #0 /home/harold/public_html/org/bh/wiki/lib/main.php(1273):
>> MakeWikiZip(Object(WikiRequest))
>> #1 /home/harold/public_html/org/bh/wiki/lib/main.php(819):
>> WikiRequest->action_zip()
>> #2 /home/harold/public_html/org/bh/wiki/lib/main.php(1456):
>> WikiRequest->handleAction()
>> #3 /home/harold/public_html/org/bh/wiki/lib/main.php(1480): main() #4
> /home/harold/public_html/org/bh/wiki/index.php(60):
>> include('/home/harold/pu...')
>> #5 {main}
>>   thrown in /home/harold/public_html/org/bh/wiki/lib/loadsave.php on
> line
>> 217
>> [15-Jan-2022 18:55:59 UTC] PHP Notice:  Undefined index: MinPage in
> /home/harold/public_html/fr/index.php on line 9
>> [15-Jan-2022 18:55:59 UTC] PHP Notice:  Undefined index: MaxPage in
> /home/harold/public_html/fr/index.php on line 10
>> [15-Jan-2022 18:56:00 UTC] PHP Notice:  Undefined index: HOME in
> /home/harold/public_html/org/w6iwi/script/rbn.php on line 108
>> [15-Jan-2022 18:56:05 UTC] PHP Notice:  Undefined index: MinPage in
> /home/harold/public_html/fr/index.php on line 9
>> [15-Jan-2022 18:56:05 UTC] PHP Notice:  Undefined index: MaxPage in
> /home/harold/public_html/fr/index.php on line 10
>> [15-Jan-2022 18:56:26 UTC] PHP Notice:  Undefined index: MinPage in
> /home/harold/public_html/fr/index.php on line 9
>> [15-Jan-2022 18:56:26 UTC] PHP Notice:  Undefined index: MaxPage in
> /home/harold/public_html/fr/index.php on line 10
>> [15-Jan-2022 18:56:35 UTC] PHP Fatal error:  Uncaught Error: Class
> 'ZipArchive' not found in
>> /home/harold/public_html/org/bh/wiki/lib/loadsave.php:217
>> Stack trace:
>> #0 /home/harold/public_html/org/bh/wiki/lib/main.php(1273):
>> MakeWikiZip(Object(WikiRequest))
>> #1 /home/harold/public_html/org/bh/wiki/lib/main.php(819):
>> WikiRequest->action_zip()
>> #2 /home/harold/public_html/org/bh/wiki/lib/main.php(1456):
>> WikiRequest->handleAction()
>> #3 /home/harold/public_html/org/bh/wiki/lib/main.php(1480): main() #4
> /home/harold/public_html/org/bh/wiki/index.php(60):
>> include('/home/harold/pu...')
>> #5 {main}
>>   thrown in /home/harold/public_html/org/bh/wiki/lib/loadsave.php on
> line
>> 217
>> Using Dump To Directory, a lot of files (perhaps all) show up in the
> specified directory, but this error message appears at the bottom of 
> the page.
>> Fatal PhpWiki Error: couldn't open file "/home/harold/tmp/wikidump/"
>> for
> writing
>> I just updated to  phpwiki-code-r10903-trunk and the errors still
> appear.
>> I am going to try a restore from the dump to directory since it looks
> like
>> it may be working.
>> THANKS!
>> Harold
>> _______________________________________________
>> Phpwiki-talk mailing list
>> Php...@li...
>> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>> _______________________________________________
>> Phpwiki-talk mailing list
>> Php...@li...
>> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>
> --
> FCC Rules Updated Daily at http://www.hallikainen.com Not sent from an 
> iPhone.
>
>
>
>
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>


--
FCC Rules Updated Daily at http://www.hallikainen.com Not sent from an iPhone.


_______________________________________________
Phpwiki-talk mailing list
Php...@li...
https://lists.sourceforge.net/lists/listinfo/phpwiki-talk

Re: [Phpwiki-talk] Issues with Wiki Dump and Garbage in page_data

[Harold H. <ha...@ha...>]

Done! Actually, the method of my previous updates was pretty poor, and I
ended up with nested versions. So, it was difficult to tell what version
was actually running. I have now just unzipped version 10904, renamed it,
and copied over my old config.ini after comparing it with config-dist to
see what changes needed to be made. It appears to be working!

So, back to the original question. Are files now created in page_data and
ver_data when a nonexistant page is requested? Again, my DB method is
file. I have a lot of trash in those two directories.

I don't see an easy way of getting rid of the trash other than doing a
dump of the wiki, deleting everything in those directories, then doing a
respore. Is this a reasonable approach?

THANKS!

Harold


On Sun, January 16, 2022 12:43 pm, Vargenau, Marc-Etienne (Nokia -
FR/Paris-Saclay) wrote:
> Hi Harold,
>
> Can you please update to Subversion 10904 and test?
>
> Also, can you do an
> https://bh.hallikainen.org/wiki/index.php/HomePage?action=upgrade&overwrite=1
> you have quite old versions of system files like PhpWikiAdministration
>
> Best regards,
>
> Marc-Etienne
>
> -----Original Message-----
> From: Harold Hallikainen <ha...@ha...>
> Sent: Saturday, January 15, 2022 11:43 PM
> To: php...@li...
> Subject: Re: [Phpwiki-talk] Issues with Wiki Dump
>
> Thanks for the QUICK response!
>
> I ran
>
> dnf install php-zip
> service httpd restart
>
> and it works!
>
>
> I am using the flat file database. In wiki_data, I find page_data and
> ver_data. It LOOKS like ver_data has all versions of the page while
> page_data has just the most current. I have tried deleting the files in
> page_data and then looking at the wiki. The latest versions of the pages
> still show up, and are then added to page_data.
>
> Since access data is stored in the page file, every time someone tries to
> access a page that does not exist, it appears that an appropriate file is
> created to hold that access data. As people try to hack the system, I end
> up with files like those below in page_data.
>
>
> %27A
> %28%29
> %28CASE+WHEN+%283541%3D3541%29+THEN+3541+ELSE+3541%2A%28SELECT+3541+FROM+DUAL+UNION+SELECT+2885+FROM+DUAL%29+END%29
> %28CASE+WHEN+%284882%3D2501%29+THEN+4882+ELSE+4882%2A%28SELECT+4882+FROM+DUAL+UNION+SELECT+2501+FROM+DUAL%29+END%29
> %28CASE+WHEN+%289302%3D9302%29+THEN+SLEEP%2832%29+ELSE+9302+END%29
> %28CASE+WHEN+4772%3D4772+THEN+4772+ELSE+NULL+END%29
> %28CASE+WHEN+7219%3D9319+THEN+7219+ELSE+NULL+END%29
> %28SELECT+%28CASE+WHEN+%283521%3D3521%29+THEN+%27RCA%27+ELSE+%28SELECT+5220+UNION+SELECT+3216%29+END%29%29
> %28SELECT+%28CASE+WHEN+%289983%3D6874%29+THEN+%27RCA%27+ELSE+%28SELECT+6874+UNION+SELECT+8819%29+END%29%29
> %28SELECT+CONCAT%280x7162716a71%2C%28ELT%284931%3D4931%2C1%29%29%2C0x717a767871%29%29
> %28SELECT+CONCAT%280x716a6b7071%2C%28ELT%282020%3D2020%2C1%29%29%2C0x717a786b71%29%29
> %28SELECT+CONCAT%280x7170717171%2C%28ELT%281739%3D1739%2C1%29%29%2C0x7171627a71%29%29
> %28SELECT+CONCAT%280x7176627171%2C%28ELT%289244%3D9244%2C1%29%29%2C0x716a717a71%29%29
> %28SELECT+CONCAT%280x71766a7871%2C%28ELT%285835%3D5835%2C1%29%29%2C0x7178787871%29%29
> %28SELECT+CONCAT%280x717a7a6271%2C%28ELT%284238%3D4238%2C1%29%29%2C0x71626a6b71%29%29
> %28SELECT+CONCAT%28CONCAT%28%27qbqjq%27%2C%28CASE+WHEN+%283392%3D3392%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qzvxq%27%29%29
> %28SELECT+CONCAT%28CONCAT%28%27qjkpq%27%2C%28CASE+WHEN+%284051%3D4051%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qzxkq%27%29%29
> %28SELECT+CONCAT%28CONCAT%28%27qpqqq%27%2C%28CASE+WHEN+%282945%3D2945%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qqbzq%27%29%29
> %28SELECT+CONCAT%28CONCAT%28%27qvbqq%27%2C%28CASE+WHEN+%281904%3D1904%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qjqzq%27%29%29
> %28SELECT+CONCAT%28CONCAT%28%27qvjxq%27%2C%28CASE+WHEN+%281582%3D1582%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qxxxq%27%29%29
> %28SELECT+CONCAT%28CONCAT%28%27qzzbq%27%2C%28CASE+WHEN+%282980%3D2980%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qbjkq%27%29%29
>
> When I unzip the dump, I do not see those filenames, so that's good! So,
> how do I get rid of these "hack" files? Maybe empty the page_data and
> page_ver directories, then do a restore?
>
> Also, it would be great if an attempt to access a non-existent page would
> not create a file for it.
>
> THANKS!
>
> Harold
>
>
>
>
>
> On Sat, January 15, 2022 2:36 pm, Vargenau, Marc-Etienne (Nokia -
> FR/Paris-Saclay) wrote:
>> Hi Harold,
>> 'ZipArchive' is a standard class of PHP since PHP 5.2.0
>> https://www.php.net/manual/en/class.ziparchive
>> Probably your PHP is not compiled with that class.
>> You should check with phpinfo().
>> Best regards,
>> Marc-Etienne
>> -----Original Message-----
>> From: Harold Hallikainen <ha...@ha...>
>> Sent: Saturday, January 15, 2022 8:23 PM
>> To: Harold Hallikainen <ha...@ha...>
>> Cc: Discussion on PhpWiki features, bugs, development.
>> <php...@li...>
>> Subject: [Phpwiki-talk] Issues with Wiki Dump I am having issues with
>> the wiki dump. Here are the PHP error messages:
> [15-Jan-2022 18:55:17 UTC] PHP Fatal error:  Uncaught Error: Class
> 'ZipArchive' not found in
>> /home/harold/public_html/org/bh/wiki/lib/loadsave.php:217
>> Stack trace:
>> #0 /home/harold/public_html/org/bh/wiki/lib/main.php(1273):
>> MakeWikiZip(Object(WikiRequest))
>> #1 /home/harold/public_html/org/bh/wiki/lib/main.php(819):
>> WikiRequest->action_zip()
>> #2 /home/harold/public_html/org/bh/wiki/lib/main.php(1456):
>> WikiRequest->handleAction()
>> #3 /home/harold/public_html/org/bh/wiki/lib/main.php(1480): main() #4
> /home/harold/public_html/org/bh/wiki/index.php(60):
>> include('/home/harold/pu...')
>> #5 {main}
>>   thrown in /home/harold/public_html/org/bh/wiki/lib/loadsave.php on
> line
>> 217
>> [15-Jan-2022 18:55:59 UTC] PHP Notice:  Undefined index: MinPage in
> /home/harold/public_html/fr/index.php on line 9
>> [15-Jan-2022 18:55:59 UTC] PHP Notice:  Undefined index: MaxPage in
> /home/harold/public_html/fr/index.php on line 10
>> [15-Jan-2022 18:56:00 UTC] PHP Notice:  Undefined index: HOME in
> /home/harold/public_html/org/w6iwi/script/rbn.php on line 108
>> [15-Jan-2022 18:56:05 UTC] PHP Notice:  Undefined index: MinPage in
> /home/harold/public_html/fr/index.php on line 9
>> [15-Jan-2022 18:56:05 UTC] PHP Notice:  Undefined index: MaxPage in
> /home/harold/public_html/fr/index.php on line 10
>> [15-Jan-2022 18:56:26 UTC] PHP Notice:  Undefined index: MinPage in
> /home/harold/public_html/fr/index.php on line 9
>> [15-Jan-2022 18:56:26 UTC] PHP Notice:  Undefined index: MaxPage in
> /home/harold/public_html/fr/index.php on line 10
>> [15-Jan-2022 18:56:35 UTC] PHP Fatal error:  Uncaught Error: Class
> 'ZipArchive' not found in
>> /home/harold/public_html/org/bh/wiki/lib/loadsave.php:217
>> Stack trace:
>> #0 /home/harold/public_html/org/bh/wiki/lib/main.php(1273):
>> MakeWikiZip(Object(WikiRequest))
>> #1 /home/harold/public_html/org/bh/wiki/lib/main.php(819):
>> WikiRequest->action_zip()
>> #2 /home/harold/public_html/org/bh/wiki/lib/main.php(1456):
>> WikiRequest->handleAction()
>> #3 /home/harold/public_html/org/bh/wiki/lib/main.php(1480): main() #4
> /home/harold/public_html/org/bh/wiki/index.php(60):
>> include('/home/harold/pu...')
>> #5 {main}
>>   thrown in /home/harold/public_html/org/bh/wiki/lib/loadsave.php on
> line
>> 217
>> Using Dump To Directory, a lot of files (perhaps all) show up in the
> specified directory, but this error message appears at the bottom of the
> page.
>> Fatal PhpWiki Error: couldn't open file "/home/harold/tmp/wikidump/"
>> for
> writing
>> I just updated to  phpwiki-code-r10903-trunk and the errors still
> appear.
>> I am going to try a restore from the dump to directory since it looks
> like
>> it may be working.
>> THANKS!
>> Harold
>> _______________________________________________
>> Phpwiki-talk mailing list
>> Php...@li...
>> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>> _______________________________________________
>> Phpwiki-talk mailing list
>> Php...@li...
>> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>
> --
> FCC Rules Updated Daily at http://www.hallikainen.com Not sent from an
> iPhone.
>
>
>
>
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>


-- 
FCC Rules Updated Daily at http://www.hallikainen.com
Not sent from an iPhone.

Re: [Phpwiki-talk] Issues with Wiki Dump

[Vargenau, Marc-E. (N. - FR/Paris-Saclay) <mar...@no...>]

Hi Harold,

Can you please update to Subversion 10904 and test?

Also, can you do an
https://bh.hallikainen.org/wiki/index.php/HomePage?action=upgrade&overwrite=1
you have quite old versions of system files like PhpWikiAdministration

Best regards,

Marc-Etienne

-----Original Message-----
From: Harold Hallikainen <ha...@ha...> 
Sent: Saturday, January 15, 2022 11:43 PM
To: php...@li...
Subject: Re: [Phpwiki-talk] Issues with Wiki Dump

Thanks for the QUICK response!

I ran

dnf install php-zip
service httpd restart

and it works!


I am using the flat file database. In wiki_data, I find page_data and ver_data. It LOOKS like ver_data has all versions of the page while page_data has just the most current. I have tried deleting the files in page_data and then looking at the wiki. The latest versions of the pages still show up, and are then added to page_data.

Since access data is stored in the page file, every time someone tries to access a page that does not exist, it appears that an appropriate file is created to hold that access data. As people try to hack the system, I end up with files like those below in page_data.


%27A
%28%29
%28CASE+WHEN+%283541%3D3541%29+THEN+3541+ELSE+3541%2A%28SELECT+3541+FROM+DUAL+UNION+SELECT+2885+FROM+DUAL%29+END%29
%28CASE+WHEN+%284882%3D2501%29+THEN+4882+ELSE+4882%2A%28SELECT+4882+FROM+DUAL+UNION+SELECT+2501+FROM+DUAL%29+END%29
%28CASE+WHEN+%289302%3D9302%29+THEN+SLEEP%2832%29+ELSE+9302+END%29
%28CASE+WHEN+4772%3D4772+THEN+4772+ELSE+NULL+END%29
%28CASE+WHEN+7219%3D9319+THEN+7219+ELSE+NULL+END%29
%28SELECT+%28CASE+WHEN+%283521%3D3521%29+THEN+%27RCA%27+ELSE+%28SELECT+5220+UNION+SELECT+3216%29+END%29%29
%28SELECT+%28CASE+WHEN+%289983%3D6874%29+THEN+%27RCA%27+ELSE+%28SELECT+6874+UNION+SELECT+8819%29+END%29%29
%28SELECT+CONCAT%280x7162716a71%2C%28ELT%284931%3D4931%2C1%29%29%2C0x717a767871%29%29
%28SELECT+CONCAT%280x716a6b7071%2C%28ELT%282020%3D2020%2C1%29%29%2C0x717a786b71%29%29
%28SELECT+CONCAT%280x7170717171%2C%28ELT%281739%3D1739%2C1%29%29%2C0x7171627a71%29%29
%28SELECT+CONCAT%280x7176627171%2C%28ELT%289244%3D9244%2C1%29%29%2C0x716a717a71%29%29
%28SELECT+CONCAT%280x71766a7871%2C%28ELT%285835%3D5835%2C1%29%29%2C0x7178787871%29%29
%28SELECT+CONCAT%280x717a7a6271%2C%28ELT%284238%3D4238%2C1%29%29%2C0x71626a6b71%29%29
%28SELECT+CONCAT%28CONCAT%28%27qbqjq%27%2C%28CASE+WHEN+%283392%3D3392%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qzvxq%27%29%29
%28SELECT+CONCAT%28CONCAT%28%27qjkpq%27%2C%28CASE+WHEN+%284051%3D4051%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qzxkq%27%29%29
%28SELECT+CONCAT%28CONCAT%28%27qpqqq%27%2C%28CASE+WHEN+%282945%3D2945%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qqbzq%27%29%29
%28SELECT+CONCAT%28CONCAT%28%27qvbqq%27%2C%28CASE+WHEN+%281904%3D1904%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qjqzq%27%29%29
%28SELECT+CONCAT%28CONCAT%28%27qvjxq%27%2C%28CASE+WHEN+%281582%3D1582%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qxxxq%27%29%29
%28SELECT+CONCAT%28CONCAT%28%27qzzbq%27%2C%28CASE+WHEN+%282980%3D2980%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qbjkq%27%29%29

When I unzip the dump, I do not see those filenames, so that's good! So, how do I get rid of these "hack" files? Maybe empty the page_data and page_ver directories, then do a restore?

Also, it would be great if an attempt to access a non-existent page would not create a file for it.

THANKS!

Harold





On Sat, January 15, 2022 2:36 pm, Vargenau, Marc-Etienne (Nokia -
FR/Paris-Saclay) wrote:
> Hi Harold,
> 'ZipArchive' is a standard class of PHP since PHP 5.2.0 
> https://www.php.net/manual/en/class.ziparchive
> Probably your PHP is not compiled with that class.
> You should check with phpinfo().
> Best regards,
> Marc-Etienne
> -----Original Message-----
> From: Harold Hallikainen <ha...@ha...>
> Sent: Saturday, January 15, 2022 8:23 PM
> To: Harold Hallikainen <ha...@ha...>
> Cc: Discussion on PhpWiki features, bugs, development.
> <php...@li...>
> Subject: [Phpwiki-talk] Issues with Wiki Dump I am having issues with 
> the wiki dump. Here are the PHP error messages:
[15-Jan-2022 18:55:17 UTC] PHP Fatal error:  Uncaught Error: Class 'ZipArchive' not found in
> /home/harold/public_html/org/bh/wiki/lib/loadsave.php:217
> Stack trace:
> #0 /home/harold/public_html/org/bh/wiki/lib/main.php(1273):
> MakeWikiZip(Object(WikiRequest))
> #1 /home/harold/public_html/org/bh/wiki/lib/main.php(819):
> WikiRequest->action_zip()
> #2 /home/harold/public_html/org/bh/wiki/lib/main.php(1456):
> WikiRequest->handleAction()
> #3 /home/harold/public_html/org/bh/wiki/lib/main.php(1480): main() #4
/home/harold/public_html/org/bh/wiki/index.php(60):
> include('/home/harold/pu...')
> #5 {main}
>   thrown in /home/harold/public_html/org/bh/wiki/lib/loadsave.php on
line
> 217
> [15-Jan-2022 18:55:59 UTC] PHP Notice:  Undefined index: MinPage in
/home/harold/public_html/fr/index.php on line 9
> [15-Jan-2022 18:55:59 UTC] PHP Notice:  Undefined index: MaxPage in
/home/harold/public_html/fr/index.php on line 10
> [15-Jan-2022 18:56:00 UTC] PHP Notice:  Undefined index: HOME in
/home/harold/public_html/org/w6iwi/script/rbn.php on line 108
> [15-Jan-2022 18:56:05 UTC] PHP Notice:  Undefined index: MinPage in
/home/harold/public_html/fr/index.php on line 9
> [15-Jan-2022 18:56:05 UTC] PHP Notice:  Undefined index: MaxPage in
/home/harold/public_html/fr/index.php on line 10
> [15-Jan-2022 18:56:26 UTC] PHP Notice:  Undefined index: MinPage in
/home/harold/public_html/fr/index.php on line 9
> [15-Jan-2022 18:56:26 UTC] PHP Notice:  Undefined index: MaxPage in
/home/harold/public_html/fr/index.php on line 10
> [15-Jan-2022 18:56:35 UTC] PHP Fatal error:  Uncaught Error: Class
'ZipArchive' not found in
> /home/harold/public_html/org/bh/wiki/lib/loadsave.php:217
> Stack trace:
> #0 /home/harold/public_html/org/bh/wiki/lib/main.php(1273):
> MakeWikiZip(Object(WikiRequest))
> #1 /home/harold/public_html/org/bh/wiki/lib/main.php(819):
> WikiRequest->action_zip()
> #2 /home/harold/public_html/org/bh/wiki/lib/main.php(1456):
> WikiRequest->handleAction()
> #3 /home/harold/public_html/org/bh/wiki/lib/main.php(1480): main() #4
/home/harold/public_html/org/bh/wiki/index.php(60):
> include('/home/harold/pu...')
> #5 {main}
>   thrown in /home/harold/public_html/org/bh/wiki/lib/loadsave.php on
line
> 217
> Using Dump To Directory, a lot of files (perhaps all) show up in the
specified directory, but this error message appears at the bottom of the page.
> Fatal PhpWiki Error: couldn't open file "/home/harold/tmp/wikidump/" 
> for
writing
> I just updated to  phpwiki-code-r10903-trunk and the errors still
appear.
> I am going to try a restore from the dump to directory since it looks
like
> it may be working.
> THANKS!
> Harold
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk


--
FCC Rules Updated Daily at http://www.hallikainen.com Not sent from an iPhone.





_______________________________________________
Phpwiki-talk mailing list
Php...@li...
https://lists.sourceforge.net/lists/listinfo/phpwiki-talk

Re: [Phpwiki-talk] Issues with Wiki Dump

[Harold H. <ha...@ha...>]

Thanks for the QUICK response!

I ran

dnf install php-zip
service httpd restart

and it works!


I am using the flat file database. In wiki_data, I find page_data and
ver_data. It LOOKS like ver_data has all versions of the page while
page_data has just the most current. I have tried deleting the files in
page_data and then looking at the wiki. The latest versions of the pages
still show up, and are then added to page_data.

Since access data is stored in the page file, every time someone tries to
access a page that does not exist, it appears that an appropriate file is
created to hold that access data. As people try to hack the system, I end
up with files like those below in page_data.


%27A
%28%29
%28CASE+WHEN+%283541%3D3541%29+THEN+3541+ELSE+3541%2A%28SELECT+3541+FROM+DUAL+UNION+SELECT+2885+FROM+DUAL%29+END%29
%28CASE+WHEN+%284882%3D2501%29+THEN+4882+ELSE+4882%2A%28SELECT+4882+FROM+DUAL+UNION+SELECT+2501+FROM+DUAL%29+END%29
%28CASE+WHEN+%289302%3D9302%29+THEN+SLEEP%2832%29+ELSE+9302+END%29
%28CASE+WHEN+4772%3D4772+THEN+4772+ELSE+NULL+END%29
%28CASE+WHEN+7219%3D9319+THEN+7219+ELSE+NULL+END%29
%28SELECT+%28CASE+WHEN+%283521%3D3521%29+THEN+%27RCA%27+ELSE+%28SELECT+5220+UNION+SELECT+3216%29+END%29%29
%28SELECT+%28CASE+WHEN+%289983%3D6874%29+THEN+%27RCA%27+ELSE+%28SELECT+6874+UNION+SELECT+8819%29+END%29%29
%28SELECT+CONCAT%280x7162716a71%2C%28ELT%284931%3D4931%2C1%29%29%2C0x717a767871%29%29
%28SELECT+CONCAT%280x716a6b7071%2C%28ELT%282020%3D2020%2C1%29%29%2C0x717a786b71%29%29
%28SELECT+CONCAT%280x7170717171%2C%28ELT%281739%3D1739%2C1%29%29%2C0x7171627a71%29%29
%28SELECT+CONCAT%280x7176627171%2C%28ELT%289244%3D9244%2C1%29%29%2C0x716a717a71%29%29
%28SELECT+CONCAT%280x71766a7871%2C%28ELT%285835%3D5835%2C1%29%29%2C0x7178787871%29%29
%28SELECT+CONCAT%280x717a7a6271%2C%28ELT%284238%3D4238%2C1%29%29%2C0x71626a6b71%29%29
%28SELECT+CONCAT%28CONCAT%28%27qbqjq%27%2C%28CASE+WHEN+%283392%3D3392%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qzvxq%27%29%29
%28SELECT+CONCAT%28CONCAT%28%27qjkpq%27%2C%28CASE+WHEN+%284051%3D4051%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qzxkq%27%29%29
%28SELECT+CONCAT%28CONCAT%28%27qpqqq%27%2C%28CASE+WHEN+%282945%3D2945%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qqbzq%27%29%29
%28SELECT+CONCAT%28CONCAT%28%27qvbqq%27%2C%28CASE+WHEN+%281904%3D1904%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qjqzq%27%29%29
%28SELECT+CONCAT%28CONCAT%28%27qvjxq%27%2C%28CASE+WHEN+%281582%3D1582%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qxxxq%27%29%29
%28SELECT+CONCAT%28CONCAT%28%27qzzbq%27%2C%28CASE+WHEN+%282980%3D2980%29+THEN+%271%27+ELSE+%270%27+END%29%29%2C%27qbjkq%27%29%29

When I unzip the dump, I do not see those filenames, so that's good! So,
how do I get rid of these "hack" files? Maybe empty the page_data and
page_ver directories, then do a restore?

Also, it would be great if an attempt to access a non-existent page would
not create a file for it.

THANKS!

Harold





On Sat, January 15, 2022 2:36 pm, Vargenau, Marc-Etienne (Nokia -
FR/Paris-Saclay) wrote:
> Hi Harold,
> 'ZipArchive' is a standard class of PHP since PHP 5.2.0
> https://www.php.net/manual/en/class.ziparchive
> Probably your PHP is not compiled with that class.
> You should check with phpinfo().
> Best regards,
> Marc-Etienne
> -----Original Message-----
> From: Harold Hallikainen <ha...@ha...>
> Sent: Saturday, January 15, 2022 8:23 PM
> To: Harold Hallikainen <ha...@ha...>
> Cc: Discussion on PhpWiki features, bugs, development.
> <php...@li...>
> Subject: [Phpwiki-talk] Issues with Wiki Dump
> I am having issues with the wiki dump. Here are the PHP error messages:
[15-Jan-2022 18:55:17 UTC] PHP Fatal error:  Uncaught Error: Class
'ZipArchive' not found in
> /home/harold/public_html/org/bh/wiki/lib/loadsave.php:217
> Stack trace:
> #0 /home/harold/public_html/org/bh/wiki/lib/main.php(1273):
> MakeWikiZip(Object(WikiRequest))
> #1 /home/harold/public_html/org/bh/wiki/lib/main.php(819):
> WikiRequest->action_zip()
> #2 /home/harold/public_html/org/bh/wiki/lib/main.php(1456):
> WikiRequest->handleAction()
> #3 /home/harold/public_html/org/bh/wiki/lib/main.php(1480): main() #4
/home/harold/public_html/org/bh/wiki/index.php(60):
> include('/home/harold/pu...')
> #5 {main}
>   thrown in /home/harold/public_html/org/bh/wiki/lib/loadsave.php on
line
> 217
> [15-Jan-2022 18:55:59 UTC] PHP Notice:  Undefined index: MinPage in
/home/harold/public_html/fr/index.php on line 9
> [15-Jan-2022 18:55:59 UTC] PHP Notice:  Undefined index: MaxPage in
/home/harold/public_html/fr/index.php on line 10
> [15-Jan-2022 18:56:00 UTC] PHP Notice:  Undefined index: HOME in
/home/harold/public_html/org/w6iwi/script/rbn.php on line 108
> [15-Jan-2022 18:56:05 UTC] PHP Notice:  Undefined index: MinPage in
/home/harold/public_html/fr/index.php on line 9
> [15-Jan-2022 18:56:05 UTC] PHP Notice:  Undefined index: MaxPage in
/home/harold/public_html/fr/index.php on line 10
> [15-Jan-2022 18:56:26 UTC] PHP Notice:  Undefined index: MinPage in
/home/harold/public_html/fr/index.php on line 9
> [15-Jan-2022 18:56:26 UTC] PHP Notice:  Undefined index: MaxPage in
/home/harold/public_html/fr/index.php on line 10
> [15-Jan-2022 18:56:35 UTC] PHP Fatal error:  Uncaught Error: Class
'ZipArchive' not found in
> /home/harold/public_html/org/bh/wiki/lib/loadsave.php:217
> Stack trace:
> #0 /home/harold/public_html/org/bh/wiki/lib/main.php(1273):
> MakeWikiZip(Object(WikiRequest))
> #1 /home/harold/public_html/org/bh/wiki/lib/main.php(819):
> WikiRequest->action_zip()
> #2 /home/harold/public_html/org/bh/wiki/lib/main.php(1456):
> WikiRequest->handleAction()
> #3 /home/harold/public_html/org/bh/wiki/lib/main.php(1480): main() #4
/home/harold/public_html/org/bh/wiki/index.php(60):
> include('/home/harold/pu...')
> #5 {main}
>   thrown in /home/harold/public_html/org/bh/wiki/lib/loadsave.php on
line
> 217
> Using Dump To Directory, a lot of files (perhaps all) show up in the
specified directory, but this error message appears at the bottom of the
page.
> Fatal PhpWiki Error: couldn't open file "/home/harold/tmp/wikidump/" for
writing
> I just updated to  phpwiki-code-r10903-trunk and the errors still
appear.
> I am going to try a restore from the dump to directory since it looks
like
> it may be working.
> THANKS!
> Harold
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk


-- 
FCC Rules Updated Daily at http://www.hallikainen.com
Not sent from an iPhone.

Re: [Phpwiki-talk] Issues with Wiki Dump

[Vargenau, Marc-E. (N. - FR/Paris-Saclay) <mar...@no...>]

Hi Harold,

'ZipArchive' is a standard class of PHP since PHP 5.2.0
https://www.php.net/manual/en/class.ziparchive

Probably your PHP is not compiled with that class.
You should check with phpinfo().

Best regards,

Marc-Etienne

-----Original Message-----
From: Harold Hallikainen <ha...@ha...> 
Sent: Saturday, January 15, 2022 8:23 PM
To: Harold Hallikainen <ha...@ha...>
Cc: Discussion on PhpWiki features, bugs, development. <php...@li...>
Subject: [Phpwiki-talk] Issues with Wiki Dump

I am having issues with the wiki dump. Here are the PHP error messages:

[15-Jan-2022 18:55:17 UTC] PHP Fatal error:  Uncaught Error: Class 'ZipArchive' not found in
/home/harold/public_html/org/bh/wiki/lib/loadsave.php:217
Stack trace:
#0 /home/harold/public_html/org/bh/wiki/lib/main.php(1273):
MakeWikiZip(Object(WikiRequest))
#1 /home/harold/public_html/org/bh/wiki/lib/main.php(819):
WikiRequest->action_zip()
#2 /home/harold/public_html/org/bh/wiki/lib/main.php(1456):
WikiRequest->handleAction()
#3 /home/harold/public_html/org/bh/wiki/lib/main.php(1480): main() #4
/home/harold/public_html/org/bh/wiki/index.php(60):
include('/home/harold/pu...')
#5 {main}
  thrown in /home/harold/public_html/org/bh/wiki/lib/loadsave.php on line
217
[15-Jan-2022 18:55:59 UTC] PHP Notice:  Undefined index: MinPage in /home/harold/public_html/fr/index.php on line 9
[15-Jan-2022 18:55:59 UTC] PHP Notice:  Undefined index: MaxPage in /home/harold/public_html/fr/index.php on line 10
[15-Jan-2022 18:56:00 UTC] PHP Notice:  Undefined index: HOME in /home/harold/public_html/org/w6iwi/script/rbn.php on line 108
[15-Jan-2022 18:56:05 UTC] PHP Notice:  Undefined index: MinPage in /home/harold/public_html/fr/index.php on line 9
[15-Jan-2022 18:56:05 UTC] PHP Notice:  Undefined index: MaxPage in /home/harold/public_html/fr/index.php on line 10
[15-Jan-2022 18:56:26 UTC] PHP Notice:  Undefined index: MinPage in /home/harold/public_html/fr/index.php on line 9
[15-Jan-2022 18:56:26 UTC] PHP Notice:  Undefined index: MaxPage in /home/harold/public_html/fr/index.php on line 10
[15-Jan-2022 18:56:35 UTC] PHP Fatal error:  Uncaught Error: Class 'ZipArchive' not found in
/home/harold/public_html/org/bh/wiki/lib/loadsave.php:217
Stack trace:
#0 /home/harold/public_html/org/bh/wiki/lib/main.php(1273):
MakeWikiZip(Object(WikiRequest))
#1 /home/harold/public_html/org/bh/wiki/lib/main.php(819):
WikiRequest->action_zip()
#2 /home/harold/public_html/org/bh/wiki/lib/main.php(1456):
WikiRequest->handleAction()
#3 /home/harold/public_html/org/bh/wiki/lib/main.php(1480): main() #4
/home/harold/public_html/org/bh/wiki/index.php(60):
include('/home/harold/pu...')
#5 {main}
  thrown in /home/harold/public_html/org/bh/wiki/lib/loadsave.php on line
217



Using Dump To Directory, a lot of files (perhaps all) show up in the specified directory, but this error message appears at the bottom of the page.

Fatal PhpWiki Error: couldn't open file "/home/harold/tmp/wikidump/" for writing

I just updated to  phpwiki-code-r10903-trunk and the errors still appear.
I am going to try a restore from the dump to directory since it looks like it may be working.

THANKS!

Harold






_______________________________________________
Phpwiki-talk mailing list
Php...@li...
https://lists.sourceforge.net/lists/listinfo/phpwiki-talk

[Phpwiki-talk] Issues with Wiki Dump

[Harold H. <ha...@ha...>]

I am having issues with the wiki dump. Here are the PHP error messages:

[15-Jan-2022 18:55:17 UTC] PHP Fatal error:  Uncaught Error: Class
'ZipArchive' not found in
/home/harold/public_html/org/bh/wiki/lib/loadsave.php:217
Stack trace:
#0 /home/harold/public_html/org/bh/wiki/lib/main.php(1273):
MakeWikiZip(Object(WikiRequest))
#1 /home/harold/public_html/org/bh/wiki/lib/main.php(819):
WikiRequest->action_zip()
#2 /home/harold/public_html/org/bh/wiki/lib/main.php(1456):
WikiRequest->handleAction()
#3 /home/harold/public_html/org/bh/wiki/lib/main.php(1480): main() #4
/home/harold/public_html/org/bh/wiki/index.php(60):
include('/home/harold/pu...')
#5 {main}
  thrown in /home/harold/public_html/org/bh/wiki/lib/loadsave.php on line
217
[15-Jan-2022 18:55:59 UTC] PHP Notice:  Undefined index: MinPage in
/home/harold/public_html/fr/index.php on line 9
[15-Jan-2022 18:55:59 UTC] PHP Notice:  Undefined index: MaxPage in
/home/harold/public_html/fr/index.php on line 10
[15-Jan-2022 18:56:00 UTC] PHP Notice:  Undefined index: HOME in
/home/harold/public_html/org/w6iwi/script/rbn.php on line 108
[15-Jan-2022 18:56:05 UTC] PHP Notice:  Undefined index: MinPage in
/home/harold/public_html/fr/index.php on line 9
[15-Jan-2022 18:56:05 UTC] PHP Notice:  Undefined index: MaxPage in
/home/harold/public_html/fr/index.php on line 10
[15-Jan-2022 18:56:26 UTC] PHP Notice:  Undefined index: MinPage in
/home/harold/public_html/fr/index.php on line 9
[15-Jan-2022 18:56:26 UTC] PHP Notice:  Undefined index: MaxPage in
/home/harold/public_html/fr/index.php on line 10
[15-Jan-2022 18:56:35 UTC] PHP Fatal error:  Uncaught Error: Class
'ZipArchive' not found in
/home/harold/public_html/org/bh/wiki/lib/loadsave.php:217
Stack trace:
#0 /home/harold/public_html/org/bh/wiki/lib/main.php(1273):
MakeWikiZip(Object(WikiRequest))
#1 /home/harold/public_html/org/bh/wiki/lib/main.php(819):
WikiRequest->action_zip()
#2 /home/harold/public_html/org/bh/wiki/lib/main.php(1456):
WikiRequest->handleAction()
#3 /home/harold/public_html/org/bh/wiki/lib/main.php(1480): main() #4
/home/harold/public_html/org/bh/wiki/index.php(60):
include('/home/harold/pu...')
#5 {main}
  thrown in /home/harold/public_html/org/bh/wiki/lib/loadsave.php on line
217



Using Dump To Directory, a lot of files (perhaps all) show up in the
specified directory, but this error message appears at the bottom of the
page.

Fatal PhpWiki Error: couldn't open file “/home/harold/tmp/wikidump/” for
writing

I just updated to  phpwiki-code-r10903-trunk and the errors still appear.
I am going to try a restore from the dump to directory since it looks like
it may be working.

THANKS!

Harold

Re: [Phpwiki-talk] User Authorization and Page File Creation for non-existent pages

[Harold H. <ha...@ha...>]

The warning shows up when I log in as a non-admin user (where I modified
the password file to use the password generated by the password encrypt
utinilty instead of by htpasswd). The warning is attached. Note that if I
use htpasswd, the wiki will not accept that user.

THANKS for all the work on this!

Harold


> Hi Harold,
>
> Good news!
>
> I do not see warnings on https://bh.hallikainen.org/
>
> However, what is a bit strange is that you have blank entries on page
> AllPages:
> https://bh.hallikainen.org/wiki/index.php/AllPages
>
> Best regards,
>
> Marc-Etienne
>
> -----Original Message-----
> From: Harold Hallikainen <ha...@ha...>
> Sent: Friday, August 20, 2021 7:47 PM
> To: php...@li...
> Subject: Re: [Phpwiki-talk] User Authorization and Page File Creation for
> non-existent pages
>
> THANKS! It's working well! https://bh.hallikainen.org/ is running under
> AlmaLinux. There are a few warnings at the end of the page. I have not yet
> figured out where the error log is. These warnings do not show up in the
> httpd error log, the php error log, or the php-fpm error log.
>
> Harold
>
>
>
>> Hi Harold,
>>
>> Yes, I made some improvements for DATABASE_TYPE = file.
>>
>> Please keep me informed if you have issues.
>>
>> Marc-Etienne
>>
>> -----Original Message-----
>> From: Harold Hallikainen <ha...@ha...>
>> Sent: Tuesday, August 17, 2021 6:39 PM
>> To: php...@li...
>> Subject: Re: [Phpwiki-talk] User Authorization and Page File Creation
>> for non-existent pages
>>
>> THANKS! Looking at the activity, you've been busy. I really appreciate
>> all your work on this. I've started migrating to a new server running
>> Alma Linux 8. My current server is running Centos 6. LOTS of PHP
>> complaints on PhpWiki. I look forward to trying this new version.
>>
>> Again, thanks!
>>
>> Harold
>> _______________________________________________
>> Phpwiki-talk mailing list
>> Php...@li...
>> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>>
>> _______________________________________________
>> Phpwiki-talk mailing list
>> Php...@li...
>> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>>
>>
>
>
> --
> FCC Rules Updated Daily at http://www.hallikainen.com Not sent from an
> iPhone.
>
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>


-- 
FCC Rules Updated Daily at http://www.hallikainen.com
Not sent from an iPhone.

Re: [Phpwiki-talk] User Authorization and Page File Creation for non-existent pages

[Vargenau, Marc-E. (N. - FR/Paris-Saclay) <mar...@no...>]

Hi Harold,

Good news!

I do not see warnings on https://bh.hallikainen.org/

However, what is a bit strange is that you have blank entries on page AllPages:
https://bh.hallikainen.org/wiki/index.php/AllPages

Best regards,

Marc-Etienne

-----Original Message-----
From: Harold Hallikainen <ha...@ha...> 
Sent: Friday, August 20, 2021 7:47 PM
To: php...@li...
Subject: Re: [Phpwiki-talk] User Authorization and Page File Creation for non-existent pages

THANKS! It's working well! https://bh.hallikainen.org/ is running under AlmaLinux. There are a few warnings at the end of the page. I have not yet figured out where the error log is. These warnings do not show up in the httpd error log, the php error log, or the php-fpm error log.

Harold



> Hi Harold,
>
> Yes, I made some improvements for DATABASE_TYPE = file.
>
> Please keep me informed if you have issues.
>
> Marc-Etienne
>
> -----Original Message-----
> From: Harold Hallikainen <ha...@ha...>
> Sent: Tuesday, August 17, 2021 6:39 PM
> To: php...@li...
> Subject: Re: [Phpwiki-talk] User Authorization and Page File Creation 
> for non-existent pages
>
> THANKS! Looking at the activity, you've been busy. I really appreciate 
> all your work on this. I've started migrating to a new server running 
> Alma Linux 8. My current server is running Centos 6. LOTS of PHP 
> complaints on PhpWiki. I look forward to trying this new version.
>
> Again, thanks!
>
> Harold
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>


--
FCC Rules Updated Daily at http://www.hallikainen.com Not sent from an iPhone.


_______________________________________________
Phpwiki-talk mailing list
Php...@li...
https://lists.sourceforge.net/lists/listinfo/phpwiki-talk

Re: [Phpwiki-talk] User Authorization and Page File Creation for non-existent pages

[Vargenau, Marc-E. (N. - FR/Paris-Saclay) <mar...@no...>]

Hi Harold,

No idea for the moment, I need to check.

Best regards,

Marc-Etienne

-----Original Message-----
From: Harold Hallikainen <ha...@ha...> 
Sent: Tuesday, August 24, 2021 10:07 PM
To: php...@li...
Subject: Re: [Phpwiki-talk] User Authorization and Page File Creation for non-existent pages



Back on user authorization, I am using file and using htpasswd to create the password file.

I am now getting:

Warning: "crypt(): Supplied salt is not valid for DES. Possible bug in provided salt format."

and the supplied password does not let the user in.

Following up on this, I tried editing the user password file replacing the password created by htpasswd with one created by the Password Encryption Utility (wiki/passencrypt.php). That then does allow the user to log in, though there is still the error message at the bottom of the page:
Warning: "crypt(): Supplied salt is not valid for DES. Possible bug in provided salt format."

Ideas?

THANKS!

Harold



> Hi Harold,
>
> Yes, I made some improvements for DATABASE_TYPE = file.
>
> Please keep me informed if you have issues.
>
> Marc-Etienne
>
> -----Original Message-----
> From: Harold Hallikainen <ha...@ha...>
> Sent: Tuesday, August 17, 2021 6:39 PM
> To: php...@li...
> Subject: Re: [Phpwiki-talk] User Authorization and Page File Creation
for non-existent pages
>
> THANKS! Looking at the activity, you've been busy. I really appreciate
all your work on this. I've started migrating to a new server running Alma Linux 8. My current server is running Centos 6. LOTS of PHP complaints on PhpWiki. I look forward to trying this new version.
>
> Again, thanks!
>
> Harold
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>


--
FCC Rules Updated Daily at http://www.hallikainen.com Not sent from an iPhone.



-- 
FCC Rules Updated Daily at http://www.hallikainen.com
Not sent from an iPhone.



-- 
FCC Rules Updated Daily at http://www.hallikainen.com
Not sent from an iPhone.


_______________________________________________
Phpwiki-talk mailing list
Php...@li...
https://lists.sourceforge.net/lists/listinfo/phpwiki-talk

Re: [Phpwiki-talk] User Authorization and Page File Creation for non-existent pages

[Harold H. <ha...@ha...>]

Back on user authorization, I am using file and using htpasswd to create
the password file.

I am now getting:

Warning: "crypt(): Supplied salt is not valid for DES. Possible bug in
provided salt format."

and the supplied password does not let the user in.

Following up on this, I tried editing the user password file replacing the
password created by htpasswd with one created by the Password Encryption
Utility (wiki/passencrypt.php). That then does allow the user to log in,
though there is still the error message at the bottom of the page:
Warning: "crypt(): Supplied salt is not valid for DES. Possible bug in
provided salt format."

Ideas?

THANKS!

Harold



> Hi Harold,
>
> Yes, I made some improvements for DATABASE_TYPE = file.
>
> Please keep me informed if you have issues.
>
> Marc-Etienne
>
> -----Original Message-----
> From: Harold Hallikainen <ha...@ha...>
> Sent: Tuesday, August 17, 2021 6:39 PM
> To: php...@li...
> Subject: Re: [Phpwiki-talk] User Authorization and Page File Creation
for non-existent pages
>
> THANKS! Looking at the activity, you've been busy. I really appreciate
all your work on this. I've started migrating to a new server running Alma
Linux 8. My current server is running Centos 6. LOTS of PHP
complaints on PhpWiki. I look forward to trying this new version.
>
> Again, thanks!
>
> Harold
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>


-- 
FCC Rules Updated Daily at http://www.hallikainen.com
Not sent from an iPhone.



-- 
FCC Rules Updated Daily at http://www.hallikainen.com
Not sent from an iPhone.



-- 
FCC Rules Updated Daily at http://www.hallikainen.com
Not sent from an iPhone.

Re: [Phpwiki-talk] User Authorization and Page File Creation for non-existent pages

[Harold H. <ha...@ha...>]

Back on user authorization, I am using file and using htpasswd to create
the password file.

I am now getting:

Warning: "crypt(): Supplied salt is not valid for DES. Possible bug in
provided salt format."

and the supplied password does not let the user in.

Ideas?

THANKS!

Harold



> Hi Harold,
>
> Yes, I made some improvements for DATABASE_TYPE = file.
>
> Please keep me informed if you have issues.
>
> Marc-Etienne
>
> -----Original Message-----
> From: Harold Hallikainen <ha...@ha...>
> Sent: Tuesday, August 17, 2021 6:39 PM
> To: php...@li...
> Subject: Re: [Phpwiki-talk] User Authorization and Page File Creation
for non-existent pages
>
> THANKS! Looking at the activity, you've been busy. I really appreciate
all your work on this. I've started migrating to a new server running
Alma Linux 8. My current server is running Centos 6. LOTS of PHP
complaints on PhpWiki. I look forward to trying this new version.
>
> Again, thanks!
>
> Harold
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>


-- 
FCC Rules Updated Daily at http://www.hallikainen.com
Not sent from an iPhone.



-- 
FCC Rules Updated Daily at http://www.hallikainen.com
Not sent from an iPhone.

Re: [Phpwiki-talk] User Authorization and Page File Creation for non-existent pages

[Harold H. <ha...@ha...>]

THANKS! It's working well! https://bh.hallikainen.org/ is running under
AlmaLinux. There are a few warnings at the end of the page. I have not yet
figured out where the error log is. These warnings do not show up in the
httpd error log, the php error log, or the php-fpm error log.

Harold



> Hi Harold,
>
> Yes, I made some improvements for DATABASE_TYPE = file.
>
> Please keep me informed if you have issues.
>
> Marc-Etienne
>
> -----Original Message-----
> From: Harold Hallikainen <ha...@ha...>
> Sent: Tuesday, August 17, 2021 6:39 PM
> To: php...@li...
> Subject: Re: [Phpwiki-talk] User Authorization and Page File Creation for
> non-existent pages
>
> THANKS! Looking at the activity, you've been busy. I really appreciate all
> your work on this. I've started migrating to a new server running Alma
> Linux 8. My current server is running Centos 6. LOTS of PHP complaints on
> PhpWiki. I look forward to trying this new version.
>
> Again, thanks!
>
> Harold
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>


-- 
FCC Rules Updated Daily at http://www.hallikainen.com
Not sent from an iPhone.

Re: [Phpwiki-talk] User Authorization and Page File Creation for non-existent pages

[Vargenau, Marc-E. (N. - FR/Paris-Saclay) <mar...@no...>]

Hi Harold,

Yes, I made some improvements for DATABASE_TYPE = file.

Please keep me informed if you have issues.

Marc-Etienne

-----Original Message-----
From: Harold Hallikainen <ha...@ha...> 
Sent: Tuesday, August 17, 2021 6:39 PM
To: php...@li...
Subject: Re: [Phpwiki-talk] User Authorization and Page File Creation for non-existent pages

THANKS! Looking at the activity, you've been busy. I really appreciate all your work on this. I've started migrating to a new server running Alma Linux 8. My current server is running Centos 6. LOTS of PHP complaints on PhpWiki. I look forward to trying this new version.

Again, thanks!

Harold
_______________________________________________
Phpwiki-talk mailing list
Php...@li...
https://lists.sourceforge.net/lists/listinfo/phpwiki-talk

Re: [Phpwiki-talk] User Authorization and Page File Creation for non-existent pages

[Harold H. <ha...@ha...>]

THANKS! Looking at the activity, you've been busy. I really appreciate all
your work on this. I've started migrating to a new server running Alma
Linux 8. My current server is running Centos 6. LOTS of PHP complaints on
PhpWiki. I look forward to trying this new version.

Again, thanks!

Harold



> Hi Harold,
>
> Thank you for your continued interest in PhpWiki.
>
> I have finally the time to publish PhpWiki 1.6.0:
> https://sourceforge.net/p/phpwiki/news/2021/08/phpwiki-160-released/
>
> You might want to upgrade your wiki to this version.
>
> I have added some notes about user authentication in file
> config/config-dist.ini, based on your notes below.
>
> Best regards,
>
> Marc-Etienne
>
> -----Original Message-----
> From: Harold Hallikainen <ha...@ha...>
> Sent: Monday, July 19, 2021 5:15 AM
> To: Harold Hallikainen <ha...@ha...>
> Cc: Discussion on PhpWiki features, bugs, development.
> <php...@li...>
> Subject: Re: [Phpwiki-talk] User Authorization and Page File Creation for
> non-existent pages
>
>
> Following up on this, I have a couple solutions.
>
> To get rid of the files for pages that do not exist, I create a zip dump
> of the wiki, move the wiki page files somewhere else as a  backup, do a
> restore from the dump. If all looks good, the moved page files are
> deleted.
>
> I have not dug extensively into the code, but I understand that page
> access data is saved in the wiki page file. If someone tries to access a
> page that does not exist (typically trying to send a command to get
> /etc/passwd), a file is created with that page name to record the access
> even though the page does not exist. I might dig into the code a bit to
> see if I can make an access not create a file.
>
> Second, on using file authentication, after grepping around a bit, I found
> in config.ini
>
> ; File authentication options:
> ;
> ; File to read for authentication information.
> ; Popular choices are /etc/shadow and /etc/httpd/.htpasswd ;
> AUTH_USER_FILE = /etc/shadow AUTH_USER_FILE =
> /home/harold/BhWikiData/users ; above line changed 7/18/21. hh See
> /home/harold/BhWikiData/AddingUsers
> for info.
>
> You can see how I changed the AUTH_USER_FILE. I made notes in
> /home/harold/BhWikiData/AddingUsers to remind me how to add users:
>
> [harold@mai BhWikiData]$ cat AddingUsers User info is kept in
> /home/harold/BhWikiData/users.
>
> To add a user, run the command
>
> htpasswd UserName
>
> where UserName is the user to be added. You will be prompted twice for the
> password.
>
> hh
> 7/18/21
>
>
> I added a test user, and IT WORKED! Hopefully this will help someone else
> using file authentication.
>
> Thanks!
>
> Harold
>
>
>
>
> --
> FCC Rules Updated Daily at http://www.hallikainen.com Not sent from an
> iPhone.
>
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
> _______________________________________________
> Phpwiki-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>
>


-- 
FCC Rules Updated Daily at http://www.hallikainen.com
Not sent from an iPhone.

Re: [Phpwiki-talk] User Authorization and Page File Creation for non-existent pages

[Vargenau, Marc-E. (N. - FR/Paris-Saclay) <mar...@no...>]

Hi Harold,

Thank you for your continued interest in PhpWiki.

I have finally the time to publish PhpWiki 1.6.0:
https://sourceforge.net/p/phpwiki/news/2021/08/phpwiki-160-released/

You might want to upgrade your wiki to this version.

I have added some notes about user authentication in file config/config-dist.ini, based on your notes below.

Best regards,

Marc-Etienne

-----Original Message-----
From: Harold Hallikainen <ha...@ha...> 
Sent: Monday, July 19, 2021 5:15 AM
To: Harold Hallikainen <ha...@ha...>
Cc: Discussion on PhpWiki features, bugs, development. <php...@li...>
Subject: Re: [Phpwiki-talk] User Authorization and Page File Creation for non-existent pages


Following up on this, I have a couple solutions.

To get rid of the files for pages that do not exist, I create a zip dump of the wiki, move the wiki page files somewhere else as a  backup, do a restore from the dump. If all looks good, the moved page files are deleted.

I have not dug extensively into the code, but I understand that page access data is saved in the wiki page file. If someone tries to access a page that does not exist (typically trying to send a command to get /etc/passwd), a file is created with that page name to record the access even though the page does not exist. I might dig into the code a bit to see if I can make an access not create a file.

Second, on using file authentication, after grepping around a bit, I found in config.ini

; File authentication options:
;
; File to read for authentication information.
; Popular choices are /etc/shadow and /etc/httpd/.htpasswd ; AUTH_USER_FILE = /etc/shadow AUTH_USER_FILE = /home/harold/BhWikiData/users ; above line changed 7/18/21. hh See /home/harold/BhWikiData/AddingUsers
for info.

You can see how I changed the AUTH_USER_FILE. I made notes in /home/harold/BhWikiData/AddingUsers to remind me how to add users:

[harold@mai BhWikiData]$ cat AddingUsers User info is kept in /home/harold/BhWikiData/users.

To add a user, run the command

htpasswd UserName

where UserName is the user to be added. You will be prompted twice for the password.

hh
7/18/21


I added a test user, and IT WORKED! Hopefully this will help someone else using file authentication.

Thanks!

Harold




--
FCC Rules Updated Daily at http://www.hallikainen.com Not sent from an iPhone.


_______________________________________________
Phpwiki-talk mailing list
Php...@li...
https://lists.sourceforge.net/lists/listinfo/phpwiki-talk

Re: [Phpwiki-talk] User Authorization and Page File Creation for non-existent pages

[Harold H. <ha...@ha...>]

>
>>
>>> Hi Harold,
>>>
>>> Unfortunately, I have never tested Phpwiki with DATABASE_TYPE: file
>>> I have only tested with an SQL database.
>>> I will need some time to test your issue.
>>>
>>> Best regards,
>>>
>>> Marc-Etienne
>>
>> THANKS! I wish I was better at reading the code in this complex
>> application. So, there are two issues:
>>
>> 1. How to authorize users when authorization file method.
>>
>> 2. Using flat file for page data, how to avoid the creation of new files
>> when someone tries to access a page that does not exist.
>>
>> THANKS!
>>
>> Harold
>> http://bh.hallikainen.org/wiki/
>>
>
> I get a daily report of new files on the server. Here's a typical file
> created by someone trying to access a nonexistent wiki page:
>
> page_data/Historic+Papers%27%2F%2A%2A%2Fand%28select%271%27from%2F%2A%2A%2Fpg_sleep%283%29%29%270
>
> Someone is clearly trying to hack the database. It would be nice if
> attempts to access nonexistent pages did not generate a page file.
>
> THANKS!
>
> Harold
>


Following up on this, I have a couple solutions.

To get rid of the files for pages that do not exist, I create a zip dump
of the wiki, move the wiki page files somewhere else as a  backup, do a
restore from the dump. If all looks good, the moved page files are
deleted.

I have not dug extensively into the code, but I understand that page
access data is saved in the wiki page file. If someone tries to access a
page that does not exist (typically trying to send a command to get
/etc/passwd), a file is created with that page name to record the access
even though the page does not exist. I might dig into the code a bit to
see if I can make an access not create a file.

Second, on using file authentication, after grepping around a bit, I found
in config.ini

; File authentication options:
;
; File to read for authentication information.
; Popular choices are /etc/shadow and /etc/httpd/.htpasswd
; AUTH_USER_FILE = /etc/shadow
AUTH_USER_FILE = /home/harold/BhWikiData/users
; above line changed 7/18/21. hh See /home/harold/BhWikiData/AddingUsers
for info.

You can see how I changed the AUTH_USER_FILE. I made notes in
/home/harold/BhWikiData/AddingUsers to remind me how to add users:

[harold@mai BhWikiData]$ cat AddingUsers
User info is kept in /home/harold/BhWikiData/users.

To add a user, run the command

htpasswd UserName

where UserName is the user to be added. You will be prompted twice for the
password.

hh
7/18/21


I added a test user, and IT WORKED! Hopefully this will help someone else
using file authentication.

Thanks!

Harold




-- 
FCC Rules Updated Daily at http://www.hallikainen.com
Not sent from an iPhone.